Vulnerabilities > Linux > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-02-11 | CVE-2009-4067 | Classic Buffer Overflow vulnerability in multiple products Buffer overflow in the auerswald_probe function in the Auerswald Linux USB driver for the Linux kernel before 2.6.27 allows physically proximate attackers to execute arbitrary code, cause a denial of service via a crafted USB device, or take full control of the system. | 6.8 |
| 2020-02-06 | CVE-2020-8649 | Use After Free vulnerability in multiple products There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the vgacon_invert_region function in drivers/video/console/vgacon.c. | 5.9 |
| 2020-02-06 | CVE-2020-8647 | Use After Free vulnerability in multiple products There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the vc_do_resize function in drivers/tty/vt/vt.c. | 6.1 |
| 2020-01-31 | CVE-2019-3016 | Race Condition vulnerability in Linux Kernel In a Linux KVM guest that has PV TLB enabled, a process in the guest kernel may be able to read memory locations from another process in the same guest. | 4.7 |
| 2020-01-27 | CVE-2019-20422 | Improper Handling of Exceptional Conditions vulnerability in Linux Kernel In the Linux kernel before 5.3.4, fib6_rule_lookup in net/ipv6/ip6_fib.c mishandles the RT6_LOOKUP_F_DST_NOREF flag in a reference-count decision, leading to (for example) a crash that was identified by syzkaller, aka CID-7b09c2d052db. | 5.5 |
| 2020-01-22 | CVE-2018-16268 | Improper Privilege Management vulnerability in Linux Tizen The SoundServer/FocusServer system services in Tizen allow an unprivileged process to perform media-related system actions, due to improper D-Bus security policy configurations. | 4.3 |
| 2020-01-22 | CVE-2018-16265 | Improper Privilege Management vulnerability in Linux Tizen The bt/bt_core system service in Tizen allows an unprivileged process to create a system user interface and control the Bluetooth pairing process, due to improper D-Bus security policy configurations. | 6.5 |
| 2020-01-22 | CVE-2018-16264 | Information Exposure vulnerability in Linux Tizen The BlueZ system service in Tizen allows an unprivileged process to partially control Bluetooth or acquire sensitive information, due to improper D-Bus security policy configurations. | 6.5 |
| 2020-01-16 | CVE-2019-18282 | Use of Insufficiently Random Values vulnerability in multiple products The flow_dissector feature in the Linux kernel 4.3 through 5.x before 5.3.10 has a device tracking vulnerability, aka CID-55667441c84f. | 5.3 |
| 2020-01-15 | CVE-2007-4774 | Race Condition vulnerability in Linux Kernel The Linux kernel before 2.4.36-rc1 has a race condition. | 5.9 |